CVE-2013-3969

The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mongodb:mongodb:2.4.0:*:*:*:*:*:*:*
cpe:2.3:a:mongodb:mongodb:2.4.1:*:*:*:*:*:*:*
cpe:2.3:a:mongodb:mongodb:2.4.2:*:*:*:*:*:*:*
cpe:2.3:a:mongodb:mongodb:2.4.3:*:*:*:*:*:*:*
cpe:2.3:a:mongodb:mongodb:2.4.4:*:*:*:*:*:*:*

Information

Published : 2013-10-01 13:55

Updated : 2013-10-02 13:38


NVD link : CVE-2013-3969

Mitre link : CVE-2013-3969


JSON object : View

CWE
CWE-399

Resource Management Errors

Advertisement

dedicated server usa

Products Affected

mongodb

  • mongodb